admin管理员组文章数量:1130349
I noticed the following log entry:
111.22.3.444 - - [13/Mar/2015:08:31:00 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 200 618 "/" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.115 Safari/537.36"
It is my company website and guaranteed that nobody (including me) was logged in, or using the dashboard. Shouldn't a /wp-admin/.. POST return a 404 or 403 instead of a 200?
Any tips are welcome!
Kind regards,
Gerard.
I noticed the following log entry:
111.22.3.444 - - [13/Mar/2015:08:31:00 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 200 618 "https://cap5.nl/veiligheidstips-en-voorkom-hacken-van-je-wachtwoord/" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.115 Safari/537.36"
It is my company website and guaranteed that nobody (including me) was logged in, or using the dashboard. Shouldn't a /wp-admin/.. POST return a 404 or 403 instead of a 200?
Any tips are welcome!
Kind regards,
Gerard.
Share Improve this question edited Mar 13, 2015 at 9:14 cybmeta 20.7k5 gold badges47 silver badges58 bronze badges asked Mar 13, 2015 at 9:00 GerardJPGerardJP 1031 silver badge5 bronze badges1 Answer
Reset to default 1wp-admin/admin-ajax.php is the script used by any plugin or theme using WP Ajax API and Ajax actions can be registered for non-logged in users. For example:
//For logged in users
add_action( 'wp_ajax_my_action', 'my_action_callback' );
//For non-logged in users
add_action( 'wp_ajax_nopriv_my_action', 'my_action_callback' );
There is no problem on that. See WP Ajax documentation for more information.
I noticed the following log entry:
111.22.3.444 - - [13/Mar/2015:08:31:00 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 200 618 "/" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.115 Safari/537.36"
It is my company website and guaranteed that nobody (including me) was logged in, or using the dashboard. Shouldn't a /wp-admin/.. POST return a 404 or 403 instead of a 200?
Any tips are welcome!
Kind regards,
Gerard.
I noticed the following log entry:
111.22.3.444 - - [13/Mar/2015:08:31:00 +0100] "POST /wp-admin/admin-ajax.php HTTP/1.1" 200 618 "https://cap5.nl/veiligheidstips-en-voorkom-hacken-van-je-wachtwoord/" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/40.0.2214.115 Safari/537.36"
It is my company website and guaranteed that nobody (including me) was logged in, or using the dashboard. Shouldn't a /wp-admin/.. POST return a 404 or 403 instead of a 200?
Any tips are welcome!
Kind regards,
Gerard.
Share Improve this question edited Mar 13, 2015 at 9:14 cybmeta 20.7k5 gold badges47 silver badges58 bronze badges asked Mar 13, 2015 at 9:00 GerardJPGerardJP 1031 silver badge5 bronze badges1 Answer
Reset to default 1wp-admin/admin-ajax.php is the script used by any plugin or theme using WP Ajax API and Ajax actions can be registered for non-logged in users. For example:
//For logged in users
add_action( 'wp_ajax_my_action', 'my_action_callback' );
//For non-logged in users
add_action( 'wp_ajax_nopriv_my_action', 'my_action_callback' );
There is no problem on that. See WP Ajax documentation for more information.
本文标签: security200 return code on 39POST wpadminadminajaxphp39 while NOT logged in
版权声明:本文标题:security - 200 return code on 'POST wp-adminadmin-ajax.php' while NOT logged in 内容由热心网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:https://it.en369.cn/questions/1749062020a2310245.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。
发表评论